Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

rdbadger

Posted 28 May 2012 - 05:42 PM

rdbadger

Member

Topic Starter

Member

107 posts

just waiting for the add/remove programs to come up - and I looked at the last option "set program access and defaults" and it is set on custom rather than microsoft windows - should it be set on custom?

Render

Posted 28 May 2012 - 07:04 PM

Render

Trusted Helper

Malware Removal

4,195 posts

ok will do onto it now - I just looked in task manager again and that services.exe is still running at around 250,000k - do you know what is causing this?

If process is legit it is Services Control Manager, which is responsible for running, ending, and interacting with system services. Please, don't worry about this at this point of malware removal process.

just waiting for the add/remove programs to come up - and I looked at the last option "set program access and defaults" and it is set on custom rather than microsoft windows - should it be set on custom?

Nothing wrong with this. Operating system is from Microsoft, but that doesn't mean you should not use some non Microsoft program. Firefox for example for browsing instead of Internet Explorer and so one.

When you will release enough space on your system partition we will run another tool to check if all your system files are legit.

rdbadger

Posted 28 May 2012 - 08:10 PM

rdbadger

Member

Topic Starter

Member

107 posts

...uninstalled quite a few programs and deleted quite a bit of unecessary files/folders, but barely making a dint! Arcsoft video capture seems to refuse to uninstall - I think the operating system is only about 80G anyway

Render

Posted 28 May 2012 - 09:24 PM

Do not mouse-click Combofix's window while it is running. That may cause it to stall.

ComboFix may reset a number of Internet Explorer's settings, including making Internet Explorer the default browser.

Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

If you are using personal certificates I recommend you to export them before running ComboFix and save them to external media.

Please carefully follow all steps below:

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)

Double click on Combofix.exe and follow the prompts.Notes: Combofix will run without the Recovery Console installed. Skip the Recovery Console part if you're running Vista or Windows 7.

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

Please note: If the Microsoft Windows Recovery Console is already installed, or if you are running Vista, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes. ComboFix will now start scanning your computer for known infections. This procedure can take some time, so please be patient.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.